SSAE-16 (formerly SAS 70) Compliant
Through our diligent efforts and an ongoing commitment to excellent business practices, Liquid Web recently completed a SOC 2 attestation performed under the newly released AICPA SSAE 16 attestation standard that replaces the SAS 70 standard. In undertaking this examination, Liquid Web wanted to ensure the resulting report represented a comprehensive review of our control environment. To that end, Liquid Web utilized the SOC 2 Trust Services Principles and Criteria for security and availability as a benchmark in developing our system description. In so doing, Liquid Web has addressed each of the more than 100 individual controls criteria listed in the SOC 2 Principles and Criteria. This attestation ensures that anyone choosing to business with Liquid Web can do so with complete confidence.
SOC 3 Report
In addition to issuing a SOC 2 SSAE 16 report for our clients concerned about our controls relevant to their financial statement reporting, Liquid Web also engaged our independent CPA firm to perform a review in order to produce a SOC 3 report. The SOC 3 report offers a slightly more streamlined level of reporting. Many customers appreciate the comprehensive yet concise nature of this level of reporting when they are interested in understanding the security and oversight we provide, without having to process the full, detailed level of reporting of the SOC 2 SSAE 16 report. Our SOC 3 report was produced to address risks related to IT in critical areas including:
- Security: The system is protected, both logically and physically, against unauthorized access.
- Availability: The system is available for operation and use as committed or agreed to.